Skip to content

gruntwork-io/terragrunt-engine-opentofu

BranchesTags

Repository files navigation

terragrunt-engine-opentofu

Terragrunt OpenTofu IAC engine implemented based on spec from terragrunt-engine-go

Overview

Prior to the introduction of IAC Engines, Terragrunt directly wrapped Terraform, and then OpenTofu CLI commands in order to orchestrate IAC updates in a scalable, and maintainable manner.

Over time, the Terragrunt codebase has grown in complexity, and the need for a more modular, and maintainable approach to managing IAC updates has become apparent. The OpenTofu Engine is the first Terragrunt IAC Engine implementation, and is designed to demonstrate how IAC updates can be delegated to a separate plugin that can be maintained independently of the Terragrunt codebase.

As it stands, this engine simply reproduces the existing behavior of Terragrunt, mediated by RPC calls to a plugin running locally. Note that the design of the IAC Engine system is intended to be more flexible in that it allows for myriad implementations of IAC engines, including those that may execute IAC updates in a remote environment, or include additional functionality beyond what is currently available by directly calling OpenTofu CLI commands.

We hope that this engine will inspire you to experiment and create your own IAC Engine implementations, and we look forward to seeing what you come up with!

For more information, see the Terragrunt IAC Engine RFC.

Features

Automatic OpenTofu Binary Installation

The engine supports automatic downloading and installation of OpenTofu binaries via the convenient tofudl library. This feature eliminates the need to manually install OpenTofu on your system and ensures consistent versions across different environments.

Key Benefits:

  • Version Management: Specify exact OpenTofu versions for consistent deployments
  • Automatic Downloads: Binaries are downloaded and cached automatically
  • Concurrent Safety: File locking prevents race conditions during parallel downloads
  • Smart Caching: Downloaded binaries are cached in ~/.cache/terragrunt/tofudl/ for reuse

How it works:

  • If no version is specified, the engine uses the system's OpenTofu binary
  • When a version is specified, the engine automatically downloads and caches the binary
  • Subsequent runs with the same version reuse the cached binary
  • File locking ensures safe concurrent access across multiple Terragrunt runs

Usage

To utilize the OpenTofu Engine in your Terragrunt configuration, you need to specify the engine in HCL code. Here's an example:

engine {
  source  = "github.com/gruntwork-io/terragrunt-engine-opentofu"
  // Specify a fixed version if you want to pin a specific engine version instead of always
  // using the latest version of the engine.
  // version = "v0.0.6"
}

Pinning the version of the engine is optional, but it's recommended to do so to ensure that you're always using the same version of the engine.

Auto-Install Configuration

To enable automatic OpenTofu binary installation, you can specify the desired version and optional installation directory in your Terragrunt configuration:

engine {
  source  = "github.com/gruntwork-io/terragrunt-engine-opentofu"

  meta = {
    tofu_version     = "v1.9.1"                # Required for auto-install: OpenTofu version to download (you can use "latest" to use the latest stable version)
    tofu_install_dir = "/custom/install/path"  # Optional: Custom installation directory
  }
}

Configuration Options:

  • tofu_version: (Required for auto-install) The OpenTofu version to download and use.

    Supports:

    • Specific versions: "v1.9.1", "1.8.5"
    • Latest stable: "latest"
    • If not specified, uses system OpenTofu binary

  • tofu_install_dir: (Optional) Custom directory to install the binary. If not specified, uses ~/.cache/terragrunt/tofudl/bin/<version>/

Examples:

# Use latest stable OpenTofu version
engine {
  source = "github.com/gruntwork-io/terragrunt-engine-opentofu"
  meta = {
    tofu_version = "latest"
  }
}

# Use specific OpenTofu version
engine {
  source = "github.com/gruntwork-io/terragrunt-engine-opentofu"
  meta = {
    tofu_version = "v1.9.1"
  }
}

# Use specific version with custom install directory
engine {
  source = "github.com/gruntwork-io/terragrunt-engine-opentofu"
  meta = {
    tofu_version = "v1.9.1"
    tofu_install_dir = "/opt/tofu"
  }
}

Make sure to set the required environment variable to enable the experimental engine feature:

export TG_EXPERIMENTAL_ENGINE=1

Automated Release Process

To initiate the release process, create a pre-release named using the following naming convention: vx.y.z-rcdateincrement, with the appropriate corresponding tag.

  • Example Tag: v0.0.1-rc2024053001
    • v0.0.1 represents the version number.
    • -rc2024053001 indicates a release candidate, with the date and an incrementing identifier.

Workflow:

  • Tag Creation:
    • Create a pre-release ending with -rc... to the repository.
    • This tag format will automatically trigger a CircleCI job.
  • CI/CD Process:
    • CircleCI will run a build job to compile binaries and perform necessary checks.
    • Upon successful completion, a release job will be initiated.
  • GitHub Release:
    • The release job creates a new GitHub release.
    • All compiled assets, including checksums and signatures, are uploaded to the release.

Contributing

Contributions are welcome! Checkout out the Contributing Guidelines for more information.

License

Mozilla Public License v2.0

About

No description or website provided.

Topics

terragrunt-iac-engine

Resources

Readme

License

MPL-2.0 license
Activity
Custom properties

Stars

8 stars

Watchers

9 watching

Forks

2 forks
Report repository

Releases 49

v0.0.19 Latest
Jun 16, 2025
+ 48 releases

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages